CVE-2026-41727

Summary: Spring for Apache Kafka’s retry topic infrastructure does not adequately validate user-controlled header values, allowing a crafted retry_topic-attempts header to supply an out-of-range attempt count and cause the retry topic router to misidentify a message’s position in the retry sequen...

CVE-2025-41727

creationtimestamp| type| source ---|---|--- 2026-01-27 11:38:25+00:00| seen| https://infosec.exchange/users/certvde/statuses/115966863286149942 2026-01-27 12:45:56+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mdfs2mbefk2o 2026-01-27 12:46:26+00:00| seen|...

CVE-2025-41727 Beckhoff: Performing privileged operations and gaining administrator access

A local low privileged attacker can bypass the authentication of the Device Manager user interface, allowing them to perform privileged operations and gain administrator access...

CVE-2025-41727 Beckhoff: Performing privileged operations and gaining administrator access

A local low privileged attacker can bypass the authentication of the Device Manager user interface, allowing them to perform privileged operations and gain administrator access...

EUVD-2025-41727

Malicious code in ade-sate1-riris npm...

CVE-2023-41727

An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service DoS or code execution...

Linux Distros Unpatched Vulnerability : CVE-2022-41727

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An attacker can craft a malformed TIFF image which will consume a significant amount of memory when passed to DecodeConfig. This could lead to a denial of...

F5 Networks BIG-IP : BIG-IP TMM vulnerability (K000138833)

The version of F5 Networks BIG-IP installed on the remote host is prior to 16.1.5. It is, therefore, affected by a vulnerability as referenced in the K000138833 advisory. In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition VEs using Intel E810 SR-IOV NIC,...

CVE-2024-41727

CVE-2024-41727 affects BIG-IP TMM on BIG-IP devices (and BIG-IP VE with Intel E810 SR-IOV NIC) where undisclosed traffic can cause memory resource utilization to spike, degrading performance or causing DoS. Public details specify the vulnerable components as the Traffic Management Microkernel (TM...

CVE-2024-41727 BIG-IP TMM vulnerability

In BIG-IP tenants running on r2000 and r4000 series hardware, or BIG-IP Virtual Edition VEs using Intel E810 SR-IOV NIC, undisclosed traffic can cause an increase in memory resource utilization. Note: Software versions which have reached End of Technical Support EoTS are not evaluated...

Ivanti Avalanche < 6.4.2 Multiple Vulnerabilities

The version of Ivanti Avalanche running on the remote host is prior to 6.4.2. It is, therefore, is affected by multiple vulnerabilities : - An attacker sending specially crafted data packets to the Mobile Device Server can cause memory corruption which could result to a Denial of Service DoS or...

CVE-2023-41727

creationtimestamp| type| source ---|---|--- 2024-01-13 07:21:39+00:00| seen| https://t.me/ctinow/167706...

CVE-2023-41727

CVE-2023-41727 describes a memory corruption vulnerability in Ivanti Avalanche’s Mobile Device Server component, exploitable by specially crafted packets to cause DoS or remote code execution. Public docs tie this to Ivanti Avalanche prior to version 6.4.2 (noting a 9.8/critical impact per CVSS i...

Avalanche 6.4.2 Security Hardening and CVEs addressed

Avalanche 6.4.2 has addressed some new security hardening in our 2023 Quarter 4 release. To address the security vulnerabilities listed below, it is highly recommended to download the Avalanche installer and udpate to the latest Avalanche 6.4.2. The installation will apply a fix for each CVE list...

Fedora 39 : golang-x-image (2023-28cff1a2de)

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-28cff1a2de advisory. Update to 0.13.0 Security fix for CVE-2023-29408 Security fix for CVE-2023-29407 Security fix for CVE-2022-41727 Tenable has extracted the preceding...

Fedora 38 : golang-x-image (2023-4d95d44e7b)

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-4d95d44e7b advisory. Update to 0.13.0 Security fix for CVE-2023-29408 Security fix for CVE-2023-29407 Security fix for CVE-2022-41727 Tenable has extracted the preceding...

Security Bulletin: Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to multiple vulnerabilities in Go

Summary Platform Navigator and Automation Assets in IBM Cloud Pak for Integration are vulnerable to multiple vulnerabilities in Go with details below. Vulnerability Details CVEID:CVE-2022-41723 DESCRIPTION: Golang Go is vulnerable to a denial of service, caused by a flaw in the HPACK decoder. By...

SUSE CVE-2022-41727

An attacker can craft a malformed TIFF image which will consume a significant amount of memory when passed to DecodeConfig. This could lead to a denial of service...

CVE-2022-41727

An attacker can craft a malformed TIFF image which will consume a significant amount of memory when passed to DecodeConfig. This could lead to a denial of service...

CVE-2022-41727

An attacker can craft a malformed TIFF image which will consume a significant amount of memory when passed to DecodeConfig. This could lead to a denial of service...